ASA firewall penetration testing

Unanswered Question
Jun 14th, 2007

Hi forum,

Due to SOX requirements, we are supposed to perform penetration testing on the firewall to ensure it is working as accordingly. There are tons of info on the web, I am almost complete novice at this, I would appreciate if you could advise me on how should I go about doing this? I need to write a procedure to do this yearly.

Kind regards,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
srue Thu, 06/14/2007 - 18:43

download Nessus ( ) - the free version. It's one of the better scanners for it's price (free). The biggest difference between the free version and the licensed version is updates are delayed a week for the free version.

lots of good options and tests for TONS of vulnerabilities.

anandramapathy Thu, 06/14/2007 - 23:01

There is a GUI frontend which works well once it is configured. YOu can try that too.

It is called INPROTECT. Try that out.


This Discussion